XMPP Service Operators - 2024-01-02

  1. Guus

    Is there a server out there that tries to identify itself as 'localhost' ?

  2. j.r (jugendhacker.de)

    Guus: probably ejabberd with default config: https://github.com/processone/ejabberd/blob/master/ejabberd.yml.example#L18

  3. fireburner

    Guus: "localhost" ist usually part of every machines hostfile and is not listed wich any DNS server

  4. micaela

    The call is coming from inside the house

  5. Bob Evans

    localhost is

  6. Bob Evans

    It refers to the same computer.

  7. Bob Evans

    Not another.

  8. jonas-l

    Another computer could send "localhost" as its name in a handshake

  9. jonas-l

    Most likely some log containing an event like this with a failed verification of the host identity was the reason for that question

  10. micaela

    Could they try and bypass acl by doing that?

  11. jonas-l

    I would say that it is unlikely that this would work

  12. Bob Evans


  13. moparisthebest

    Still, lying about identity is always a good first test :)

  14. jonas-l

    If you wanted to test if that works, then you would do it in a local lab until you have some exploit or plan what to do with that

  15. moparisthebest

    Sure, a responsible tester would, they might be an attacker though

  16. moparisthebest

    Did the packets have this bit set? https://www.ietf.org/rfc/rfc3514.txt